5 matches found
EUVD-2022-48200
Malicious code in bioql PyPI...
CVE-2022-45301
Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the Authenticated Users group write privileges for the path C:\tools\ruby31 and all files located in that folder...
PT-2022-27461 · Chocolatey · Chocolatey Ruby Package
Name of the Vulnerable Software and Affected Versions: Chocolatey Ruby package versions 3.1.2.1 and below Description: The issue is related to insecure permissions in the Chocolatey Ruby package, which grants all users in the Authenticated Users group write privileges for the path C:toolsruby31 a...
Ruby 安全漏洞
Chocolatey is a NuGet-based package manager developed for Windows systems.Ruby is a cross-platform, object-oriented, dynamically-typed programming language developed by the individual developer Yukihiro Matsumoto. A privilege design vulnerability exists in the Chocolatey Ruby package v3.1.2.1 and...
CVE-2022-45301
Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the Authenticated Users group write privileges for the path C:\tools\ruby31 and all files located in that folder...